« previous next »
Pages: [1]   Go Down

Author Topic: Outdated CMS and unknown_html malware on website....  (Read 1059 times)

0 Members and 1 Guest are viewing this topic.

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33926
  • malware fighter
Outdated CMS and unknown_html malware on website....
« on: October 27, 2015, 07:34:36 PM »
See: https://www.virustotal.com/nl/url/9c05abb1c5490961f8c5c13dfdc0b1ea7677e390dcebf6e7162073d24f0c48e4/analysis/1445969559/
and http://www.domxssscanner.com/scan?url=http%3A%2F%2Fabgraphicsbarrie.ca%2F

WordPress Version
3.4.2
Version does not appear to be latest 4.3.1 - update now.

Outdated plug-ins: The following plugins were detected by reading the HTML source of the WordPress sites front page.

bigcontact 1.3.8   latest release (1.5.8) Update required
http://bigemployee.com/projects/big-contact-wordpress-plugin/
jetpack 1.9.2   latest release (3.7.2) Update required
http://jetpack.me
lightbox-plus 2.4.6   latest release (2.7.2) Update required
http://www.23systems.net/plugins/lightbox-plus/

Vulnerable in jQuery: jquery - 1.7.2 : (active1) -http://abgraphicsbarrie.com/wp-includes/js/jquery/jquery.js?ver=1.7.2
Info: Severity: medium ! the library was also found to be active by running code !
Re: http://www.domxssscanner.com/scan?url=http%3A%2F%2Fabgraphicsbarrie.com%2Fwp-includes%2Fjs%2Fjquery%2Fjquery.js%3Fver%3D1.7.2   suspicious, despite of the fact the script has been minified!

Trojans detected:
Object: -http://abgraphicsbarrie.ca/
SHA1: 9b328a4b7e56852560949ec629dc6daed183060c
Name: TrojWare.JS.Agent.caa

Again another case of  abuse going on on GoDaddy dot Com, LLC  :D

polonus (volunteer website security analyst and website error-hunter)
« Last Edit: October 27, 2015, 07:38:28 PM by polonus »
Logged
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!
Pages: [1]   Go Up
« previous next »